$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: XUv7PX9Xm8/taKLgzivJbqc3KNiYKBiuzNoAqyk0kZs= Subject key identifier: 4D:37:DD:00:4F:F5:16:3B:D8:38:8C:AC:CF:37:FD:C7:2E:90:76:14 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 03BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 12AB Signing time: Thu 16 Apr 2026 17:32:43 +0000 Manifest this update: Thu 16 Apr 2026 17:32:42 +0000 Manifest next update: Thu 23 Apr 2026 17:32:42 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: g6kJlHi2h0nTGpr2bGOFHKEjcOK3KcUoLtGkJ5vR+9w=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: +CMTAtAhA5A3bcW+qweztRhJOEGADprPEZzn/dd78sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Apr 16 17:32:42 2026 GMT Not After : Apr 23 17:32:42 2026 GMT Subject: CN=69e11d3b-6127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e2:3c:84:ca:08:38:af:c8:38:19:07:b1:d4: 34:be:7e:d8:e0:7a:1d:34:37:7d:8b:f1:e2:c1:ed: 7a:7e:50:d1:00:86:11:53:7e:e0:94:72:22:44:5d: 35:29:a5:11:26:0c:ac:bd:8f:a0:72:39:aa:ec:de: e1:0f:95:c1:c3:4c:d9:96:77:2c:51:1b:4c:6a:b5: ad:f3:58:99:e7:22:65:12:fa:f9:89:54:87:4c:f7: 38:b7:42:13:02:7c:75:5c:ef:ee:9f:3a:a9:fb:80: cc:91:32:86:ac:08:70:ce:dc:98:02:b8:71:57:23: 94:ac:82:f4:33:06:a9:55:90:d9:71:15:d8:93:d0: b0:09:bf:cd:69:5e:6f:dc:4b:14:d3:25:56:40:63: 93:f7:8a:32:3d:b0:0e:ca:0f:7c:6e:d0:c6:7b:4e: 0c:14:ca:d9:84:5c:4b:28:45:21:3b:12:2d:cd:9f: 17:a0:e9:52:20:21:04:35:4b:bb:05:4f:a7:ad:62: 62:cb:3a:c9:31:5a:d3:1b:97:ee:4e:4b:9e:2b:8d: c4:96:4f:a8:53:5e:10:5c:73:8f:23:5c:95:af:6b: 31:04:32:9e:0b:eb:e9:47:e7:47:8d:21:10:db:f1: b5:80:6b:18:9d:c1:bf:76:fd:93:1f:67:a5:9f:f2: 33:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:37:DD:00:4F:F5:16:3B:D8:38:8C:AC:CF:37:FD:C7:2E:90:76:14 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3e:5d:b5:57:00:33:03:c7:cf:56:f2:15:0a:1b:90:56:a9: 2d:52:b8:13:91:1a:8c:90:b9:51:67:f3:38:d4:27:c9:4b:54: 43:07:01:73:31:63:52:db:16:b4:9f:4e:93:24:12:c0:9b:59: 02:b1:39:f4:4f:ae:d7:93:49:07:63:c8:29:1c:b8:79:23:6f: e2:1f:c7:de:78:0d:59:dc:a2:6f:b7:59:8f:da:24:57:67:02: 41:b0:8c:df:f4:89:ee:a6:f8:33:a2:95:9b:55:45:6e:25:37: b1:34:98:e2:09:55:2b:7b:7c:67:7b:d0:62:62:c2:10:fd:54: 3e:2c:18:4e:4a:94:5d:2e:83:7d:b6:e0:0e:d0:ad:83:a8:3c: 14:0e:68:62:10:fe:1b:b4:27:1f:a6:14:ad:cb:f1:c6:4f:8e: 6f:6f:78:41:06:1e:65:88:10:eb:36:16:e4:90:fb:53:59:d9: de:f2:02:98:c9:48:51:37:42:a8:9d:a1:a8:fa:74:1b:8b:3f: 67:26:3e:7a:45:d4:e9:9d:7d:cb:aa:85:bf:a5:d2:75:17:33: 3c:db:3e:38:a5:4a:d8:d0:2f:11:53:8b:dc:ef:93:5d:1e:c5: 01:39:19:f4:bf:99:1f:c3:dc:51:ee:75:fc:9c:5b:d6:0b:96: fc:e8:f7:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjYwNDE2MTczMjQyWhcNMjYwNDIzMTczMjQyWjAYMRYwFAYD VQQDEw02OWUxMWQzYi02MTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAluI8hMoIOK/IOBkHsdQ0vn7Y4HodNDd9i/Hiwe16flDRAIYRU37glHIiRF01 KaURJgysvY+gcjmq7N7hD5XBw0zZlncsURtMarWt81iZ5yJlEvr5iVSHTPc4t0IT Anx1XO/unzqp+4DMkTKGrAhwztyYArhxVyOUrIL0MwapVZDZcRXYk9CwCb/NaV5v 3EsU0yVWQGOT94oyPbAOyg98btDGe04MFMrZhFxLKEUhOxItzZ8XoOlSICEENUu7 BU+nrWJiyzrJMVrTG5fuTkueK43Elk+oU14QXHOPI1yVr2sxBDKeC+vpR+dHjSEQ 2/G1gGsYncG/dv2TH2eln/IzxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE033QBP 9RY72DiMrM83/ccukHYUMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFj5dtVcAMwPHz1byFQobkFapLVK4E5EajJC5UWfzONQnyUtUQwcBczFjUtsW tJ9OkyQSwJtZArE59E+u15NJB2PIKRy4eSNv4h/H3ngNWdyib7dZj9okV2cCQbCM 3/SJ7qb4M6KVm1VFbiU3sTSY4glVK3t8Z3vQYmLCEP1UPiwYTkqUXS6DfbbgDtCt g6g8FA5oYhD+G7QnH6YUrcvxxk+Ob294QQYeZYgQ6zYW5JD7U1nZ3vICmMlIUTdC qJ2hqPp0G4s/ZyY+ekXU6Z19y6qFv6XSdRczPNs+OKVK2NAvEVOL3O+TXR7FATkZ 9L+ZH8PcUe51/Jxb1guW/Oj3mA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:22:31 2026 by rpki-client